Type | Count |
Total entries processed | 18995 |
Entries matched on | 310 |
Inbound traffic | 18952 |
Outbound traffic | 8 |
Control Messages | 35 |
Entries Ignored | 8 |
Alert Entries | 2 |
Attack Types | 0 |
Unique Attack URLs | 0 |
Encrypted/Decrypted Entries | 4 |
Unknown Entries | 0 |
Alert Entries
Crypt/Decrypt Entries
Highlighted Entries
Source Address | Destination Address | Service | Count | Rule |
corelinkmain01.foo.com | apollo.foo.com | tcp(TACACSplus) | 44 | 4 |
webfoogen1.foo.com | devel.lab.foo.com | tcp(38567) | 42 | 4 |
webfoogen1.foo.com | devel.lab.foo.com | tcp(38530) | 41 | 4 |
webfoogen1.foo.com | zeus.lab.foo.com | tcp(1573) | 33 | 4 |
dhcp-100-101-162-201.dhcp.foo.com | webwebmain01.foo.com | tcp(sunrpc) | 30 | 4 |
fwrtrmain01.foo.com | ns4.foo.com | udp(ntp-udp) | 15 | 4 |
dhcp-100-101-162-201.dhcp.foo.com | webwebmain01.foo.com | tcp(nbsession) | 13 | 4 |
webfoogen1.foo.com | devel.lab.foo.com | tcp(35338) | 9 | 4 |
fwmain01.foo.com | dhcp-100-101-167-223.dhcp.foo.com | tcp(1167) | 8 | 4 |
webfoogen1.foo.com | devel.lab.foo.com | tcp(54924) | 7 | 4 |
fwrtrmain01.foo.com | apollo.foo.com | tcp(TACACSplus) | 6 | 4 |
fwrtrmain01.foo.com | ns4.foo.com | udp(ntp-udp) | 5 | 3 |
mlink.foo.co.uk | ns4.foo.com | udp(ntp-udp) | 4 | 3 |
gwt.lab.foo.com | fwfoomain01.foo.com | tcp(telnet) | 4 | 3 |
test.lab.foo.com | fwfoomain01.foo.com | tcp(smtp) | 4 | 3 |
fwrtrmain01.foo.com | ns4.foo.com | udp(ntp-udp) | 3 | 3 |
dhcp-100-101-167-233.dhcp.foo.com | fwmain01.foo.com | udp(177) | 2 | 4 |
mlink.foo.co.uk | ns4.foo.com | udp(ntp-udp) | 2 | 3 |
mlink.foo.co.uk | ns4.foo.com | udp(ntp-udp) | 2 | 3 |
test.lab.foo.com | fwfoomain01.foo.com | tcp(smtp) | 2 | 3 |
fwrtrmain01.foo.com | ns4.foo.com | udp(ntp-udp) | 2 | 3 |
devel.lab.foo.com | webfoogen1.foo.com | tcp(login) | 2 | 4 |
test.lab.foo.com | fwfoomain01-2 | tcp(smtp) | 2 | 3 |
mlink.foo.co.uk | ns4.foo.net | udp(ntp-udp) | 2 | 3 |
ns1.foo.com | 192.1.1.16 | tcp(smtp) | 1 | 4 |
dhcp-100-101-167-233.dhcp.foo.com | fwfoomain01.foo.com | tcp(telnet) | 1 | 3 |
dhcp-100-101-167-223.dhcp.foo.com | fwmain01.foo.com | tcp(FW1_mgmt) | 1 | 4 |
fwmain01.foo.com | rtnw.foo.com | tcp(telnet) | 1 | 4 |
mlink.foo.co.uk | ns4.foo.com | udp(ntp-udp) | 1 | 3 |
gwt.lab.foo.com | corelinkmain01.foo.com | tcp(45) | 1 | 3 |
fwrtrmain01.foo.com | 192.1.1.13 | tcp(telnet) | 1 | 4 |
fwrtrmain01.foo.com | rtnw.foo.com | tcp(telnet) | 1 | 4 |
dhcp-100-101-167-233.dhcp.foo.com | fwfoomain01-2 | udp(nbname) | 1 | 4 |
gwt.lab.foo.com | fwfoomain01.foo.com | tcp(shell) | 1 | 3 |
test.lab.foo.com | fwfoomain01.foo.com | tcp(tcpmux) | 1 | 3 |
test.lab.foo.com | fwfoomain01-2 | tcp(tcpmux) | 1 | 3 |
192.1.28.252 | webfoogen1.foo.com | tcp(login) | 1 | 4 |
webfoogen1.foo.com | apollo.foo.com | tcp(telnet) | 1 | 4 |
gwt.lab.foo.com | fwfoomain01.foo.com | tcp(telnet) | 1 | 3 |
ns1.foo.com | 192.1.1.23 | tcp(smtp) | 1 | 4 |
dhcp-100-101-167-233.dhcp.foo.com | fwfoomain01.foo.com | tcp(telnet) | 1 | 3 |
dhcp-100-101-167-233.dhcp.foo.com.au | fwfoomain01.foo.com.au | tcp(telnet) | 1 | 3 |
gwt.lab.foo.com | fwfoomain01.foo.com | udp(33442) | 1 | 3 |
fwrtrmain01.foo.com | ns4.foo.net | udp(ntp-udp) | 1 | 3 |
webfoogen1.foo.com | apollo.foo.com | tcp(login) | 1 | 4 |
corelinkmain01.foo.com | 192.1.1.13 | tcp(telnet) | 1 | 4 |
corelinkmain01.foo.com | rtnw.foo.com | tcp(telnet) | 1 | 4 |
gwt.lab.foo.com | fwfoomain01.foo.com | udp(33443) | 1 | 3 |
gwt.lab.foo.com | fwfoomain01.foo.com | udp(33441) | 1 | 3 |
ns1.foo.com | 255.255.255.255 | tcp(smtp) | 1 | 4 |